Skype Buffer Overflow Vulnerability
by HNS Staff - Tuesday, 25 October 2005.
Security portion of Skype's web site mentions a vulnerability in Skype-specific URI and VCARD import handling. The report says that this problem is a subsidiary effect of documented Borland Delphi issue.

It looks like that Skype can be made to execute arbitrary code through a buffer overflow when the software is called upon to handle malformed URLs that are in form of callto:// and skype://. In addition, Skype can be made to execute arbitrary code during importation of a VCARD that is in a specific non-standard format.

Skype for Windows releases 1.1.*.0 through 1.4.*.83 are vulnerable to these problems. For the official fix, please visit SKYPE-SB/2005-002.

Spotlight

People will do anything for free Wi-Fi

Posted on 30 September 2014.  |  A new Wi-Fi investigation conducted on the streets of London shows that consumers carelessly use public Wi-Fi without regard for their personal privacy.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Wed, Oct 1st
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //